$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: LMkv9fuLktFA+hUoXC4Nr4nnawtk827KDVhUPkj9HTI= Subject key identifier: 30:BB:D1:6D:3C:5D:FC:95:93:85:A7:DA:41:57:16:F3:DF:45:DE:9D Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0118 Signing time: Sun 11 May 2025 03:45:48 +0000 Manifest this update: Sun 11 May 2025 03:45:47 +0000 Manifest next update: Sun 18 May 2025 03:45:47 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: m5p+F2OOr51qQxUbScfuobc70zr0qTroLI6fuFEVJxo=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: May 11 03:45:47 2025 GMT Not After : May 18 03:45:47 2025 GMT Subject: CN=68201d6b-8172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:60:02:45:69:83:7d:34:9c:d9:ef:89:6a: 78:32:03:9a:74:44:11:f8:a6:24:1c:1e:0b:11:ce: 0e:5e:c6:a0:db:85:d8:70:99:1b:76:1d:f5:b5:8c: cc:c9:3b:ea:6c:0f:42:d1:61:6f:ac:64:18:32:85: 7d:9a:95:c6:0f:6a:69:9e:b7:05:ac:de:0f:bc:4a: 38:52:08:09:0b:48:31:02:04:8f:92:0d:8a:99:35: f7:98:a6:b1:dc:39:5a:76:2c:a7:76:b2:b4:82:e6: ce:71:d7:90:33:44:2d:cc:cf:04:cf:0b:ca:29:9f: c4:b8:3c:7f:d1:0b:9f:d7:d0:ba:ad:9c:37:45:6b: 90:fe:42:77:f5:32:4b:46:fa:00:bc:a6:d4:ce:02: a1:5c:ba:22:70:3d:31:6f:69:23:f7:a8:d7:80:46: a4:4c:54:29:00:3f:94:8e:cf:87:7c:53:1f:40:30: 6a:d0:69:a7:d3:e9:b1:58:c7:2d:1e:63:23:b9:6a: c8:a5:15:ed:c4:ba:43:dd:e3:25:73:86:43:38:50: 0b:de:c1:1c:79:04:e0:f6:6b:c2:88:1d:b0:e2:2d: f0:8e:fe:1b:9a:05:01:95:78:eb:23:3d:6f:56:1d: 63:68:d8:de:92:99:df:05:f5:a1:c9:da:59:7a:60: 47:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:BB:D1:6D:3C:5D:FC:95:93:85:A7:DA:41:57:16:F3:DF:45:DE:9D X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:29:52:4a:1a:71:cb:c2:48:bc:9b:c2:1f:b4:81:46:84:e1: 28:be:e5:c1:4b:91:a3:a5:71:0f:9f:f8:f4:fe:bb:cf:0e:55: 71:0e:66:d1:9b:56:ae:22:5b:fb:68:82:c6:cb:3f:71:bb:fd: c8:88:e6:73:18:6f:27:a8:33:9e:07:37:55:fd:c7:48:1f:18: f5:37:9f:e6:56:c3:f5:8b:b8:50:a0:2d:64:8f:8f:df:03:10: 1a:35:ed:2a:1d:39:bb:6a:96:b0:c3:9e:a6:14:fe:30:30:c9: 73:b1:24:bf:50:bd:08:71:b4:fb:94:79:ed:be:97:8d:ae:09: 24:58:b9:9d:dc:cb:0e:f9:c4:ce:9a:ee:3d:92:22:75:ae:b9: 95:64:5b:61:d5:eb:9a:cd:c7:f8:8e:11:1e:a5:73:8f:9b:23: 70:4b:3c:11:ac:cf:f9:4a:b0:4e:43:66:f0:54:7a:26:b5:51: 5c:62:8d:5c:67:3c:55:b0:f9:7c:38:a0:11:fa:fa:f6:23:57: c5:b9:59:8d:29:e7:23:ad:b8:2d:f6:25:62:9d:a4:4b:99:a1: fe:c6:f4:24:8e:54:32:1f:0d:f9:7c:65:51:fc:e8:97:97:ea: 14:05:7d:eb:87:06:0c:a0:1b:78:7a:0c:e6:1e:83:3b:de:68: cd:f9:8f:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwNTExMDM0NTQ3WhcNMjUwNTE4MDM0NTQ3WjAYMRYwFAYD VQQDEw02ODIwMWQ2Yi04MTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9hgAkVpg300nNnviWp4MgOadEQR+KYkHB4LEc4OXsag24XYcJkbdh31tYzM yTvqbA9C0WFvrGQYMoV9mpXGD2ppnrcFrN4PvEo4UggJC0gxAgSPkg2KmTX3mKax 3DladiyndrK0gubOcdeQM0QtzM8EzwvKKZ/EuDx/0Quf19C6rZw3RWuQ/kJ39TJL RvoAvKbUzgKhXLoicD0xb2kj96jXgEakTFQpAD+Ujs+HfFMfQDBq0Gmn0+mxWMct HmMjuWrIpRXtxLpD3eMlc4ZDOFAL3sEceQTg9mvCiB2w4i3wjv4bmgUBlXjrIz1v Vh1jaNjekpnfBfWhydpZemBHiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDC70W08 XfyVk4Wn2kFXFvPfRd6dMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXKVJKGnHLwki8m8IftIFGhOEovuXBS5GjpXEPn/j0/rvPDlVxDmbR m1auIlv7aILGyz9xu/3IiOZzGG8nqDOeBzdV/cdIHxj1N5/mVsP1i7hQoC1kj4/f AxAaNe0qHTm7apaww56mFP4wMMlzsSS/UL0IcbT7lHntvpeNrgkkWLmd3MsO+cTO mu49kiJ1rrmVZFth1euazcf4jhEepXOPmyNwSzwRrM/5SrBOQ2bwVHomtVFcYo1c ZzxVsPl8OKAR+vr2I1fFuVmNKecjrbgt9iVinaRLmaH+xvQkjlQyHw35fGVR/OiX l+oUBX3rhwYMoBt4egzmHoM73mjN+Y+X -----END CERTIFICATE-----Generated at Mon May 12 22:00:21 2025 by rpki-client